Remote Code Execution Vulnerability in Cisco Prime Collaboration Provisioning Tool

CVE-2017-6792

What is CVE-2017-6792?

A vulnerability exists in the batch provisioning feature of Cisco Prime Collaboration Provisioning Tool that permits an authenticated remote attacker to overwrite critical system files with root privileges. This is attributed to insufficient input validation of parameters used in batch file name and directory settings. By manipulating the parameters during a batch action, an attacker can successfully execute arbitrary code and compromise the system's integrity. Organizations using the affected product should implement recommended security measures to mitigate risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References